The OWASP.NET Project is the clearinghouse for all information related to building secure .NET web applications and services. The goal of the project is to provide deep content for all roles related to .NET web applications and services.

−

The purpose of the OWASP .NET Project is to provide a central repository of information and tools for software professionals that use the Microsoft .NET Framework for web applications and services. The project will try to include resources from Microsoft and from the Open Source community, the Alt.NET community and other related security resources.

+

The focus of the project is on guidance for developers using the framework, OWASP Components that use .NET, and participation in OWASP projects that

−

Please review the [[:Category:Vulnerability|vulnerabilities]] section at OWASP for the grand list of web vulnerabilities, many apply to .NET software. This section has a Quick Reference table for OWASP projects that you can use for your security projects now. For .NET related content throughout the site, look for the [[:Category:.NET|.NET category]]. There is plenty of work to be done, so feel free to join the OWASP .NET Project (See Joining the project below). Contribute work or join our mailing list, many voices are better than one, so join today!

+

Community content is key to security information. The project depends on content from developers throughout the .NET world. Check out the [[OWASP .Net Project Roadmap]] for ways to get involved.

+

==Purpose==

−

'''Goals'''

+

* Provide deep, rich guidance for .NET developers in using the security features of .NET

+

* Create guidance for use of OWASP components that are designed for use with .NET

+

* Focus on information about working with and on OWASP tools built using .NET

−

*To provide a comprehensive collection of resources for all roles involved with designing, developing and maintaining .NET web applications and services.

+

==Licensing==

+

OWASP .NET Project is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.

−

*To organize content specific to OWASP projects that can be used or referenced for .NET security.

We need help, especially with content creation and identifying OWASP projects that are .NET related. If you would like to get involved, please join the [https://lists.owasp.org/mailman/listinfo/owasp-dotnet mailing list] and introduce yourself, or email [https://www.owasp.org/index.php/User:Bill_Sempf Bill Sempf]

Revision as of 19:17, 10 April 2014

OWASP .NET Project

The OWASP.NET Project is the clearinghouse for all information related to building secure .NET web applications and services. The goal of the project is to provide deep content for all roles related to .NET web applications and services.

The focus of the project is on guidance for developers using the framework, OWASP Components that use .NET, and participation in OWASP projects that

Community content is key to security information. The project depends on content from developers throughout the .NET world. Check out the OWASP .Net Project Roadmap for ways to get involved.

Purpose

Provide deep, rich guidance for .NET developers in using the security features of .NET

Create guidance for use of OWASP components that are designed for use with .NET

Focus on information about working with and on OWASP tools built using .NET

Licensing

OWASP .NET Project is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.

What is the OWASP .NET Project?

Deep, rich guidance for .NET developers in using the security features of .NET

Guidance for use of OWASP components that are designed for use with .NET

Get involved

Already involved

The OWASP .NET project is developed by a worldwide team of volunteers. The original primary contributor is Daniel Brzozowski. Currently the team of advisers includes:

Jeff Knutson

Robert Ginsburg

Kyle Johnson

Troy Hunt

Dinis Cruz

Shamir Charania

Mohammed Al-Taweel

Daniel Brzozowski

Bill Sempf

Barry Dorrans (Microsoft)

Reid Borsuk (Microsoft)

We need more help. Please join the low volume mailing list at this address to get project announcements.

What we're doing

The themes of the .NET Project include:

Deep, rich guidance for .NET developers in using the security features of .NET

Guidance for use of OWASP components that are designed for use with .NET

Information about working with and on OWASP tools built using .NET

Roadmap

The OWASP .Net Project Roadmap has the latest guidance for the project's future. As with all Wiki documents, it is a work in progress.

We need help, especially with content creation and identifying OWASP projects that are .NET related. If you would like to get involved, please join the mailing list and introduce yourself, or email Bill Sempf